Incident Detection Challenge TechDays Munich 2018

Join us at TechDays Munich on 14th May 2018 and test your skills in our Incident Detection Challenge!

In the Challenge we will use realistic simulations of cyber attacks on an IT infrastructure to create a real-life experience in how to detect and respond to incidents. The Challenge consists of 4 rounds of about 20 minutes each at set times during the day, ending with a grand finale. In each round 4 players compete against each other to be the first to detect the hidden incidents and achieve as many points as possible. The winners from each round then enter the finale (fifth round), hoping to win the prize!


How to qualify for the Challenge

Not just anyone can take part! If you want to compete in the Challenge on 14th May, you have to solve our qualifying challenge first. But don’t leave it too late – only the first 16 successful submissions will secure a place! There will however be a waiting list for later submissions.


  • Download ZIP file here
  • Unpack the ZIP and import the OVA to VirtualBox or VMware
  • The box will gather an IP from DHCP, works with VirtualBox & VMWare


  • Do not cheat by using the virtualization to gain root access
  • Do not get the root flag through a recovery iso
  • The idea is to get root by attacking this machine remotely over a network with no physical access


  • Find all flags – flags have the format flag{string}
    Flags do not contain any hints as how to proceed
  • The goal is to gain root privileges
  • Consider it over when reading /root/final.txt and follow the instructions
  • Document your steps taken, tools used, commands fired and all the information gathered during this challenge in a short text file
  • Send us an e-mail with this text file and discovered flags (e-mail address is in the final flag). Please state either your name or a pseudonym in the e-mail*

Have fun & good luck!


What happens next?

Once we have received your submission, we will contact you with further details. Participants in the Challenge must be registered as visitors to the TechDays (tickets are free-of-charge).

Do you have any questions? Please contact us!


About us

The Challenge will be hosted by Munich-based cyber security specialist ESG/CYOSS. We use next generation technology to realistically simulate cyber attacks on IT infrastructure for highly effective cyber defence training and testing purposes in Germany’s first Cyber Simulation & Training Center.


* Your email address and name will only be used for communication and organisation purposes regarding the Challenge on 14th May 2018 and will not be used for marketing purposes or passed on to third parties.

Copyright ESG Elektroniksystem- und Logistik-GmbH 2018. All rights reserved.